The Global Privacy Associate supports the privacy team in managing privacy obligations, documentation, compliance, and responding to audits and RFPs.
What We Do
Care Access is a unique, multi-specialty network of research sites that operates as one connected team of physician investigators, nurse coordinators, and operations managers.
Who We Are
We care. Our people are the engines behind our mission: to revolutionize access to clinical trials for the benefit of patients everywhere. We care for one another, find new ideas to accelerate medicine, and seed a long-term impact for generations.
Position Overview
As Global Privacy Associate, you will report directly to the Data Protection Officer (DPO) and provide hands-on operational support across all areas of Care Access’s global privacy program.
This is a tactical, detail-oriented role focused on the day-to-day execution of Care Access’s privacy obligations. You will help execute and maintain key workflows, including intake management, DPIA/RoPA documentation, vendor reviews, DSAR tracking, privacy-related Quality Incident documentation, and the rollout of privacy controls across clinical and corporate systems. You’ll also assist with preparing responses to privacy-related RFPs, audits, and due diligence questionnaires from clients and regulators.
We’re looking for someone with 2+ years of experience who is eager to learn, adaptable to changing priorities, and committed to high-quality work. Strong documentation skills, curiosity, and follow-through are essential. This is an excellent opportunity to build deep operational experience in global health privacy, under the direct guidance of the DPO.
What You'll Be Working On (Duties include but are not limited to):
- Support the Privacy team with day-to-day privacy operations, including documentation, tracking, and compliance recordkeeping
- Assist in drafting and updating data protection documentation, including DPIAs, TIA checklists, RoPA entries, vendor assessments, Data Subject Action Requests, and consent logs.
- Help respond to privacy-related RFPs, RFIs, customer audits, and due diligence questionnaires
- Support documentation and intake workflows for data subject rights (DSAR) requests, including logging, tracking, and follow-up
- Assist in reviewing vendor privacy and security documentation, including DPAs, subprocessor lists, and TOMs
- Maintain and update internal privacy trackers, tooling, and repositories (e.g., RoPA spreadsheets, intake forms, DPIA logs)
- Assist in investigating privacy-related Quality Incidents (QIs) in collaboration with the DPO and QA team, including documentation within the QMS, root cause analysis, and follow-up actions
- Collaborate cross-functionally with legal, security, IT, clinical, and operational stakeholders to ensure privacy requirements are met.
Physical and Travel Requirements:
- This is a remote position with less than 10% travel requirements. Occasional planned travel may be required as part of the role.
What You Bring:
- Role Requirements:
- Bachelor’s degree and 2-3+ years’ experience implementing and advising on a global privacy compliance program.
- 2+ years’ experience as a privacy advisor in the healthcare / life sciences industry, strong preference for experience in healthcare, clinical research and/or pharmaceutical sector.
- Practical experience interpreting and applying international privacy laws and regulations.
- Knowledge, Skills and Abilities:
- Strong knowledge of global data protection and artificial intelligence laws and regulatory developments, including but not limited to familiarity with US, Canadian, and European data protection standards.
- Knowledge of privacy and security regulations relevant to health data and clinical research, including but not limited to HIPAA.
- Conversant in data security standards and risk management.
- Ability to explain privacy principles in a crisp, clear way that is easy for non-experts to understand and apply.
- Practical knowledge and experience interpreting privacy rules into pragmatic and actionable controls.
- Positive, “how can I help?” mindset and self-driven commitment to excellent quality standards
- Ability to track and remain current on all developments in relevant law and regulation.
Certifications/Licenses, Education, and Experience:
- CIPP certification(s) strongly preferred.
Benefits (US Full-Time Employees Only)
- Paid Time Off (PTO) and Company Paid Holidays
- 100% Employer paid medical, dental, and vision insurance plan options
- Health Savings Account and Flexible Spending Accounts
- Bi-weekly HSA employer contribution
- Company paid Short-Term Disability and Long-Term Disability
- 401(k) Retirement Plan, with Company Match
Diversity & Inclusion
We serve patients and researchers from diverse cultures and communities around the world. We are stronger and better when we build a team representing the people we aim to support. We maintain an inclusive culture where people from a broad range of backgrounds feel valued and respected as they contribute to our mission. We value diversity and believe that unique contributions drive our success.
At Care Access, every day, we are advancing medical breakthroughs. We’re uniting standard patient care with cutting-edge treatments and research. Our work brings life-changing therapies to those in need and paves the way for newer and greater treatments to reach the world. We’re proud to advance these breakthroughs and work with the big players while engaging with the
physicians and caring for patients.
We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.
Care Access is unable to sponsor work visas at this time.
Employment Statement
Care Access complies with all employment laws and regulations with respect to its employment practices, terms and conditions of employment, and pay equity and wages. Care Access does not engage in any unfair or forced labor practice and does not tolerate, under any circumstances, the use of any form of forced or involuntary labor, child labor, or human trafficking. This extends to suppliers, partners, or other third parties with whom Care Access does business. Care Access values and promotes the protection of human rights everywhere.
Top Skills
Data Protection Laws
Data Security Standards
Global Privacy Compliance
Hipaa
Care Access Boston, Massachusetts, USA Office
33 Arch Street, 17th Floor, Boston, MA, United States, 02110
Similar Jobs
.png)
Healthtech • Pharmaceutical • Telehealth
Lead and support Customer Experience teams, manage performance across BPO partners, streamline workflows, and enhance patient experience using data-driven insights.
Top Skills:
AIAutomationCrm PlatformsMacrosZendesk
Cloud • Edtech • Information Technology • Software
The Director of Governance, Risk & Compliance leads compliance and risk programs, ensuring alignment with regulations. They oversee audits, data protection policies, and operational risk management while partnering with cross-functional leaders.
Top Skills:
CisaCismCisspCriscIso 27001Nist CsfNist800-53PciSoc 2
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
The role involves leading merchandising strategy for Square Hardware across global retail partners, managing vendor relations, and ensuring effective project execution while driving budget compliance and using data insights for improvements.
What you need to know about the Boston Tech Scene
Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
